Microsoft Excel SxView Record Parsing Heap Memory Corruption

vendor:

Microsoft Excel

by:

Shahin

7.5

CVSS

HIGH

Heap Memory Corruption

CWE

Product Name: Microsoft Excel

Affected Version From: Excel 2002 SP3

Affected Version To:

Patch Exists: YES

Related CWE: CVE-2010-1245

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2010

Microsoft Excel SxView Record Parsing Heap Memory Corruption

The vulnerability exists in Microsoft Excel 2002 SP3. An attacker can exploit this vulnerability to corrupt the heap memory, leading to potential remote code execution.

Mitigation:

Apply the latest security patches from Microsoft to address this vulnerability.

Source

Microsoft Excel SxView Record Parsing Heap Memory Corruption

Mitigation:

Exploit-DB raw data: